$ rpki-client -vvf rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/B6DA2BD8E33F11EB9832A354C4F9AE02.roa File: B6DA2BD8E33F11EB9832A354C4F9AE02.roa (raw, json) Hash identifier: 0LjZpONzgJ6xRmwAyv6QVE86pcOrLtlD9gU4D1tfLto= Subject key identifier: E9:B9:0D:76:0C:5A:C1:80:22:AB:D0:3D:1E:A0:EE:57:12:09:1F:69 Certificate issuer: /CN=A91C56FB/serialNumber=93C058A0DF1773012459164B5A80D85372C7E292 Certificate serial: 13A7 Authority key identifier: 93:C0:58:A0:DF:17:73:01:24:59:16:4B:5A:80:D8:53:72:C7:E2:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8BYoN8XcwEkWRZLWoDYU3LH4pI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/B6DA2BD8E33F11EB9832A354C4F9AE02.roa Signing time: Sun 30 Jun 2024 17:37:37 +0000 ROA not before: Sun 30 Jun 2024 17:37:37 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 137443 IP address blocks: 103.117.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/k8BYoN8XcwEkWRZLWoDYU3LH4pI.crl rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/k8BYoN8XcwEkWRZLWoDYU3LH4pI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8BYoN8XcwEkWRZLWoDYU3LH4pI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:55:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5031 (0x13a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C56FB/serialNumber=93C058A0DF1773012459164B5A80D85372C7E292 Validity Not Before: Jun 30 17:37:37 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668197e0-4eca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1c:83:a7:b7:ca:52:90:ec:8d:1d:e5:e6:b1: b2:fd:7e:22:e4:c3:49:ce:4b:b0:ab:ed:55:7f:a5: bc:b6:38:f4:f1:8b:98:2c:17:62:67:ae:71:92:08: 72:8b:c8:5f:70:72:57:c8:96:c9:18:68:8a:68:4c: de:38:c6:21:e7:26:0e:78:ca:16:44:4d:46:b6:a3: 59:ad:67:cf:94:ff:3c:ec:c6:bd:38:9f:e4:8b:7e: 3b:b6:8f:3e:72:05:3b:a2:e1:80:9f:89:9c:5f:37: 5f:b8:8c:dc:83:73:bd:f2:fe:43:90:45:b2:71:00: 6f:41:ac:8a:50:85:9c:ce:fc:d0:cb:a6:59:6d:f0: af:03:17:f9:d5:e6:28:0d:78:19:42:3c:a1:ea:44: 4a:f5:bb:ee:67:36:a3:63:5e:5b:10:cc:ff:18:23: db:40:87:eb:ee:0d:55:47:9d:b4:8d:02:21:7c:87: 4d:f8:7c:f8:c3:a4:4a:d5:4f:21:8f:a8:de:60:32: 76:c2:e3:dc:05:8c:44:49:f4:b5:59:88:b5:0d:ff: ac:1d:dd:14:47:0d:70:f0:6c:c2:27:15:b1:90:c1: 4b:78:5b:22:67:fe:49:3d:0e:23:26:ed:b7:5b:cf: 4a:cc:16:96:53:81:6d:60:0b:1b:d5:3c:05:8e:7f: 70:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:B9:0D:76:0C:5A:C1:80:22:AB:D0:3D:1E:A0:EE:57:12:09:1F:69 X509v3 Authority Key Identifier: keyid:93:C0:58:A0:DF:17:73:01:24:59:16:4B:5A:80:D8:53:72:C7:E2:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/k8BYoN8XcwEkWRZLWoDYU3LH4pI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8BYoN8XcwEkWRZLWoDYU3LH4pI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/B6DA2BD8E33F11EB9832A354C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.100.0/22 Signature Algorithm: sha256WithRSAEncryption 06:2b:2b:14:19:43:ef:8a:0e:9a:8e:0d:ba:27:6f:de:6f:d1: 97:3e:bf:7e:b4:6a:bd:54:a5:67:cb:03:53:5a:18:cc:a5:66: 2b:77:48:0d:10:19:26:f1:5f:67:9b:b1:d1:0b:3b:3f:28:0d: ff:56:8b:00:03:e5:c7:3a:d3:11:6c:d5:b8:03:9c:0f:0a:42: 20:c9:dd:74:65:cc:f5:3a:8a:c3:5d:a7:81:aa:b4:9d:64:30: 61:77:16:ad:08:78:cd:9c:07:26:c8:ca:89:c5:0a:5c:41:2b: cd:70:99:72:7b:a0:16:01:f4:a2:1f:5a:6c:d1:e4:54:0b:1b: 64:ef:04:eb:4e:62:cc:d9:bf:c3:f5:76:b1:bf:ff:73:52:e4: 0a:34:a1:7b:a5:10:c6:3f:14:50:05:6c:1f:85:80:81:c5:b8: 00:c8:e0:92:5e:f4:aa:2c:36:ee:47:aa:21:45:d9:a1:03:c2: e0:5d:d1:8e:8a:f5:95:74:85:9e:07:1c:28:0a:42:c5:69:b9: b1:c0:11:cc:20:70:74:a2:e0:be:cc:fe:2b:a4:06:c6:7d:bc: 8b:fd:3e:21:5f:41:e4:9a:c3:1f:60:b1:6e:5a:52:a2:18:1b: 45:c7:43:48:ba:f8:ba:75:4d:76:24:9b:e4:6a:be:4d:db:b4: d5:0a:04:c5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICE6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU2RkIxMTAvBgNVBAUTKDkzQzA1OEEwREYxNzczMDEyNDU5MTY0QjVBODBEODUz NzJDN0UyOTIwHhcNMjQwNjMwMTczNzM3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgxOTdlMC00ZWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hyDp7fKUpDsjR3l5rGy/X4i5MNJzkuwq+1Vf6W8tjj08YuYLBdiZ65xkghy i8hfcHJXyJbJGGiKaEzeOMYh5yYOeMoWRE1GtqNZrWfPlP887Ma9OJ/ki347to8+ cgU7ouGAn4mcXzdfuIzcg3O98v5DkEWycQBvQayKUIWczvzQy6ZZbfCvAxf51eYo DXgZQjyh6kRK9bvuZzajY15bEMz/GCPbQIfr7g1VR520jQIhfIdN+Hz4w6RK1U8h j6jeYDJ2wuPcBYxESfS1WYi1Df+sHd0URw1w8GzCJxWxkMFLeFsiZ/5JPQ4jJu23 W89KzBaWU4FtYAsb1TwFjn9wlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOm5DXYM WsGAIqvQPR6g7lcSCR9pMB8GA1UdIwQYMBaAFJPAWKDfF3MBJFkWS1qA2FNyx+KS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTZGQi9FOUY1MTA0Njc4 M0ExMUU4OTA3RDUyMUFDNEY5QUUwMi9rOEJZb044WGN3RWtXUlpMV29EWVUzTEg0 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s4QllvTjhYY3dFa1dSWkxXb0RZVTNMSDRwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzU2RkIvRTlGNTEwNDY3ODNBMTFFODkwN0Q1MjFBQzRGOUFFMDIvQjZEQTJCRDhF MzNGMTFFQjk4MzJBMzU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJndWQwDQYJKoZIhvcNAQELBQADggEBAAYrKxQZQ++KDpqO Dbonb95v0Zc+v360ar1UpWfLA1NaGMylZit3SA0QGSbxX2ebsdELOz8oDf9WiwAD 5cc60xFs1bgDnA8KQiDJ3XRlzPU6isNdp4GqtJ1kMGF3Fq0IeM2cBybIyonFClxB K81wmXJ7oBYB9KIfWmzR5FQLG2TvBOtOYszZv8P1drG//3NS5Ao0oXulEMY/FFAF bB+FgIHFuADI4JJe9KosNu5HqiFF2aEDwuBd0Y6K9ZV0hZ4HHCgKQsVpubHAEcwg cHSi4L7M/iukBsZ9vIv9PiFfQeSawx9gsW5aUqIYG0XHQ0i6+Lp1TXYkm+Rqvk3b tNUKBMU= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:05 2024 by rpki-client on console-fra.rpki-client.org